Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Tunnel mode, what is the new IP?

I now that tunnel mode encrypts the whole packet and the whole packet gets a new outer IP header. What is the source IP in this header? I need this because my VPN Peer router comes after my Perimeter router. I need the perimeter router to allow VPN packets through.

Thanks In advance

1 REPLY
Hall of Fame Super Blue

Re: Tunnel mode, what is the new IP?

sahamed127 wrote:

I now that tunnel mode encrypts the whole packet and the whole packet gets a new outer IP header. What is the source IP in this header? I need this because my VPN Peer router comes after my Perimeter router. I need the perimeter router to allow VPN packets through.

Thanks In advance

The source and destination IP addresses in the outer header of the packet will the VPN peer devices at either end of the tunnel. So in your case the source IPs should be the VPN peer router public IP address where the crypto map is applied.

Jon

145
Views
0
Helpful
1
Replies
CreatePlease to create content